oski | 2976262aeed56001f874b183072c03360a1dbcdde67bfdcc982078d3bc246857 | Triage

Submit
Reports

Overview

overview

Static

static

IMG_0501_765_013.exe

windows7_x64

IMG_0501_765_013.exe

windows10_x64

Sharing

General

Target

IMG_0501_765_013.exe
Size

222KB
Sample

210506-jvaaqkpyyj
MD5

716e89179126809cc5a4b476a03dda11
SHA1

29bfe1170a118c56776938fb44289884da261294
SHA256

2976262aeed56001f874b183072c03360a1dbcdde67bfdcc982078d3bc246857
SHA512

fbecf0cdd2bb9df647034bc16d0c6b9749406c30a10e4fa19305b592f066670af80137923c56ef2f9c12b3cc44a2eb99e1b1f9913ebc37abb775b6fd15e27e22

Score

10^/10

oski infostealer

Static task

static1

Behavioral task

behavioral1

Sample

IMG_0501_765_013.exe

Resource

win7v20210408

oski infostealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

IMG_0501_765_013.exe

Resource

win10v20210408

oski infostealer

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

oski

C2

31.210.21.154

Targets

- Target
  
  IMG_0501_765_013.exe
- Size
  
  222KB
- MD5
  
  716e89179126809cc5a4b476a03dda11
- SHA1
  
  29bfe1170a118c56776938fb44289884da261294
- SHA256
  
  2976262aeed56001f874b183072c03360a1dbcdde67bfdcc982078d3bc246857
- SHA512
  
  fbecf0cdd2bb9df647034bc16d0c6b9749406c30a10e4fa19305b592f066670af80137923c56ef2f9c12b3cc44a2eb99e1b1f9913ebc37abb775b6fd15e27e22
Score

10^/10

oski infostealer
- Oski
  Oski is an infostealer targeting browser data, crypto wallets.
  infostealer oski
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

oskiinfostealer

behavioral2

oskiinfostealer

© 2018-2024

Terms | Privacy